cocos-mcp-setup
Fail
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: HIGHEXTERNAL_DOWNLOADSREMOTE_CODE_EXECUTIONCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [External Downloads & RCE] (HIGH): The skill clones a repository from an unverified source (
https://github.com/TinycellCorp/cocos-mcp-server.git) and executesnpm install. This allows the remote repository to execute arbitrary code via npm lifecycle scripts (preinstall, postinstall) during the installation phase.- [Indirect Prompt Injection] (HIGH): The skill installs a Model Context Protocol (MCP) server intended to process external data. This creates an attack surface where malicious instructions in Cocos projects or editor data could influence the agent's behavior via the newly installed tool.- [Command Execution] (MEDIUM): The skill utilizesgitandnpmto modify the local file system and download code without integrity checks, such as commit hashes or package lock verification.
Recommendations
- AI detected serious security threats
Audit Metadata